Former Google Engineer Claims to Hack Zip File Containing $300,000 in BTC

Published at: April 5, 2020

Michael Stay, a former software engineer with Google and the current CTO of smart contract and decentralized application (Dapp) firm, Pyrofex, claims to have successfully hacked a zip file containing the private keys to over $300,000 in Bitcoin (BTC).

In a blog post, Stay says that his journey began when he received a message from “a Russian guy” on LinkedIn about six months ago.

Software engineer contacted on LinkedIn regarding paper from 2000

The Russian had read a paper authored by Stay in 2000 describing a technique that he had used to successfully attack zip files.

“He had read that paper I’d written 19 years ago and wanted to know if the attack could work on a file with only two files, Stay writes, adding: “A quick analysis said not without an enormous amount of processing power and a lot of money.”

“Because I only had two files to work with, a lot more false positives would advance at each stage. There would end up being 273 possible keys to test, nearly 10 sextillion. I estimated it would take a large GPU farm a year to break, with a cost on the order of $100K. He astounded me by saying he could spend that much to recover the key.”

Zip file contained keys to $300,000 in BTC

The files contained the private keys to what had been roughly $12,500 in BTC when the Russian purchased the coins during 2016. “Now they were worth upwards of $300K and he couldn’t remember the password,” says Stay.

“Luckily, he still had the original laptop and knew exactly when the encryption took place. Because InfoZip seeds its entropy using the timestamp, that promised to reduce the work enormously—”only” 10 quintillion—and made it quite feasible, a matter of a couple of months on a medium GPU farm.” 

We made a contract and I got to work,” he adds.

After several months of testing, including the discovery of a bug in his GPU farm, Stay claims to have cracked the file and returned the private key to the Russian.

Tags
Gpu
Related Posts
YouTube channels hacked and rebranded for live-streaming crypto scams
A new report shared by Google’s Threat Analysis Group (TAG) highlights an ongoing phishing campaign against YouTube creators, typically resulting in the compromise and sale of channels for broadcasting cryptocurrency scams. The TAG attributes the attacks to a group of hackers recruited in a Russian-speaking forum that hacks the creator’s channel by offering fake collaboration opportunities. Once hijacked, the YouTube channels are either sold to the highest bidder or used to broadcast cryptocurrency scams: “A large number of hijacked channels were rebranded for cryptocurrency scam live-streaming. On account-trading markets, hijacked channels ranged from $3 USD to $4,000 USD depending on …
Bitcoin / Oct. 24, 2021
Crypto Advertisement Still Unwelcome, How Is the Industry Coping?
The United Kingdom’s Advertising Standards Authority (ASA) recently resolved a complaint regarding advertising of Bitcoin (BTC) from the BitMEX crypto derivatives exchange. According to the ASA, the website showed Bitcoin graphs with misleading price dynamics since January 2019. The ASA received four complaints, each accusing the platform of being misleading about Bitcoin investment profitability. The court satisfied the complaints. However, this was not the first time that a state took a tough attitude toward advertisement of cryptocurrencies. Here is an overview of how cryptocurrencies are advertised — or not — in the world right now. Ban, no freedom The first …
Bitcoin / Aug. 28, 2019
Square Crypto Hires Blockstream Co-Founder, Open Source Bitcoin Dev
Square Crypto, the cryptocurrency-focused branch of mobile payment company Square, has hired Blockstream co-founder and Bitcoin (BTC) developer Matt Corallo. Square Crypto announced the news in an official Twitter post on Aug. 20. Matt Corallo also commented on the announcement, saying: “So excited to be joining the @sqcrypto team over the coming weeks. Experimenting with different models to accelerate Bitcoin OSS is awesome!” As indicated in his Twitter post, Corallo is a Bitcoin Open Source Developer who previously worked at Bitcoin development company Chaincode Labs. Per his LinkedIn profile, Corallo has worked there for the past two years and 8 …
Blockchain / Aug. 20, 2019
Hodler’s Digest, Nov. 12–18: a Stablecoin Gets Sharia Certified, the IMF Considers Central Bank Digital Currencies
Coming every Sunday, the Hodler’s Digest will help you to track every single important news story that happened this week. The best (and worst) quotes, adoption and regulation highlights, leading coins, predictions, and much more — a week on Cointelegraph in one link. Top Stories This Week Swiss Crypto Firm X8 AG Receives Islamic Finance Certification for Sharia-Compliant Stablecoin Swiss-based fintech firm X8 AG has received a certification from the Shariyah Review Bureau (SRB) for its Ethereum-based stablecoin. According to the X8 director and co-founder, the ETH-based crypto asset is backed by a basket of eight fiat currencies and gold, …
Bitcoin / Nov. 18, 2018
Employee Fined For Mining BTC on Nuclear Research Center Supercomputer
An employee at a nuclear research center in the closed town of Sarov in Russia was fined for illegally mining Bitcoin (BTC). Convicted to pay $7,000 fine According to a Sept. 27 article by Russian news outlet Meduza, a man was fined 450,000 rubles ($7,000) for trying to mine Bitcoin by using a petaflop-capable supercomputer at his workplace, the All-Russian Scientific Research Institute in Sarov, Russia. Sarov, about 230 miles east of Moscow is a closed town as it is the Russian center for nuclear weapons research. The court delivered the verdict on Sept. 17. The nuclear research employee was …
Bitcoin / Sept. 28, 2019